CVE-2007-1649 - PHP 5.2.1 allows context-dependent attackers to read portions of heap memory by executing certain sc

CVE-2007-1649

Summary

PHP 5.2.1 allows context-dependent attackers to read portions of heap memory by executing certain scripts with a serialized data input string beginning with S:, which does not properly track the number of input bytes being processed.

References

Vulnerable Configurations

cpe:2.3:a:php:php:5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.2.1:*:*:*:*:*:*:*

CVSS

Base:	7.8 (as of 29-07-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:N/A:N

refmap via4

bid	23105
confirm	http://us2.php.net/releases/5_2_2.php
mandriva	MDVSA-2008:126
misc	http://www.php-security.org/MOPB/MOPB-29-2007.html
secunia	24630
xf	php-unserialize-information-disclosure(33170)

statements via4

contributor	Mark J Cox
lastmodified	2007-04-16
organization	Red Hat
statement	Not vulnerable. These issues did not affect the versions of PHP as shipped with Red Hat Enterprise Linux 2.1, 3, 4, 5, Stronghold 4.0, or Red Hat Application Stack 1.

Last major update

29-07-2017 - 01:30

Published

24-03-2007 - 00:19

Last modified

29-07-2017 - 01:30